A security researcher has earned $250,000 from Google for reporting a critical Chrome vulnerability that allowed attackers to escape the browser’s sandbox.

Google launches new payment scheme for Chrome vulnerability research Google debuted Chrome’s VPR 14 years ago, tweaking the rewards from time to time according to the needs of the platform.

The Chrome update addresses the vulnerability designated CVE-2023-2033, which Google describes as a “Type Confusion in V8” vulnerability discovered by Clément Lecigne of Google’s Threat ...

The latest security update for Chrome fixes several security vulnerabilities, one of which is considered high risk.

CERT-In has alerted users of Google Chrome for Desktop about vulnerabilities that could lead to hacking risks. These ...

After discovering the vulnerability, Imperva created a proof-of-concept on the Chromium bug tracker, showcasing how a related attack could occur in the wild. "After disclosing the vulnerability to ...

CERT-In warns Chrome desktop users to update immediately as multiple high-risk flaws could let hackers steal data or crash ...

Google will release further details about CVE-2023-2136 and the other vulnerabilities at a later date, buying time for the vast majority of Chrome browsers to update. I have spoken before about ...

The vulnerability, tracked as CVE-2023-6345, is described as an integer overflow in Skia in Google Chrome before version 119.0.6045.199 that allows a remote attacker who had compromised the ...

Google has released a patch for the latest zero-day flaw in Google Chrome 117.0.5938.132. So far, it's the fifth vulnerability to be patched in 2023.

CVE-2023-3728 is another WebRTC vulnerability, and Zhenghang Xiao was also awarded a $7000 bounty for reporting it to Google. CVE-2023-3730 is a vulnerability in the Tab Groups function.

A Vietnamese security company has found a critical vulnerability in Google’s new browser Chrome, but Google has already released patch for that problem and at least one more. The vulnerability ...